Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    44305bb8e277b9f7ae66a2e99a5173203366817e2ae6d5bf102bb3b6ca7c8518.exe

  • Size

    33KB

  • MD5

    43262d9ba2f21646f060f4b4fe5e778b

  • SHA1

    bf475f07e81720fd1e52002764821ad2a84f36eb

  • SHA256

    44305bb8e277b9f7ae66a2e99a5173203366817e2ae6d5bf102bb3b6ca7c8518

  • SHA512

    d26bb24c6d2e083091f2e30b5b2f2adc60cb0b3504d0c46e038fbc35dcfed0f9243171bb9e808c4ddc4a3e0f225615b3fd871777997e5be72d096231e8dccdd1

  • SSDEEP

    768:5MXta8q7wYEfUak1JhyF2G95bDJuOMhK/+1l:5MXtQ7RvakDgFj95bcOM+Cl

Score
10/10

Malware Config

Extracted

Family

xworm

Version

3.1

C2

zafa02.hopto.org:4545

Mutex

4tFixBcpe8fBC07n

Attributes
  • install_file

    USB.exe

aes.plain
1
OwY0YW/WaT7iqoetNhXCiw==

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 44305bb8e277b9f7ae66a2e99a5173203366817e2ae6d5bf102bb3b6ca7c8518.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.